Professional Documents
Culture Documents
The Process of Writing An Audit Report Ho
The Process of Writing An Audit Report Ho
1. Formally present the audit results to the auditee (and the audit client if
different from the auditee).
4. Serve as a valued reference for any party researching the audit entity or audit
topic.
5. Serve as the basis for a follow-up audit if audit findings were presented.
Communication Factors
Informative.
Logical Sequence .
Persuasive.
Sufficient Information.
The factors that impact the content and length of the report include the following:
• Type of audit
• Complexity of entity operations and systems
• Number of audit objectives and audit findings
• Different readership categories
• Details needed to make the content understandable
• Disclosures
• Required supplemental information
This section provides directions on how to use the audit report template and
examples where relevant.
Title Page. The following information should be included on the title page:
Table of Contents.
- an aid for the reader to quickly identify the scope of content or to find a
particular part of the audit report.
- used when reports are lengthy or contain a number of items in an
appendix.
Introduction.
Executive Summary.
Audit Scope.
- identifies the authority to perform the audit, the name of the auditee
organization and audit entity, and the period covered by the audit.
- audit scope should indicate the expected breadth of audit work and topic
areas covered by the audit.
- should identify any limitations or topic areas not included in the audit
that the readership will likely think should be included in the audit.
- indicate the relevant body of auditing standards that governed the audit
work.
Audit Objectives.
Audit Methodology.
- identify the nature and extent of audit work, audit criteria, sources of
audit criteria, whether reliance was placed upon the work of other
professionals, the type of analysis performed, and the basis for
conclusions drawn.
Audit Results.
A good audit report contains precise and concise facts that are easily
understood by the readers. In addition to terminology, language, report
structure, content requirements and protocol, sentence structure and
punctuation are also important considerations. To do this requires more than
avoiding technical jargon, slang, complex vocabulary or overly lengthy
complex sentences. If a report is misunderstood, it may be discarded, or
needed action may not be taken.
Key Rules
Following are key rules of writing that can aid in constructing well-written
audit reports.
3. Use noun markers like much and less before nouns that refer to things
that cannot be counted. Use many, few and fewer before nouns that
identify a specific number or objects that can be counted.
6. Avoid the double negatives trap. A double negative may cause the
intended meaning to be negated or it may confuse the reader. When the
8. Avoid using one or two commas to set off an essential modifier that is
required for the meaning of the sentence.
9. As a general rule, avoid having one or two words between the word ‘to’
and the verb. Dividing the word ‘to’ from the verb, which is referred to
as a split infinitive, can lead to confusion or misinterpretation.
11. Ensure that appropriate co-ordinating links (e.g., ‘and’, ‘or’, ‘therefore’
or ‘however’) are used to join independent clauses when writing
compound sentences. This can strengthen a logical sequence and
improve the overall flow. Be careful not to overuse the word ‘and’,
because sentences containing too many ‘and’ words can be confusing
to the reader.
Follow these steps to ensure that the report is understandable and well written:
Nothing can hurt the credibility of an audit report like inaccurate numbers,
incorrect references and misstatements.
• Read sections of the report in reverse order to focus on stated facts and
identify misspellings.
- new information was added while finalizing the report, and depending
on the feedback received from the auditee, certain parts of the report
may need to be re-written to strengthen the report.
- After the additional information is included and any changes are made,
the audit report should be subjected to a final review by senior audit
management before the report is issued. If extensive changes were
made to the text or difficult concepts were added, the report may require
an additional editing review prior to the senior management review and
approval.
Subsequent Events.
- include information pertaining to any events that occurred after the audit
field work was completed and before the audit report is issued that have
a material impact on the report subject matter and require amendment
or disclosure regarding the subject matter.
- - inquire with auditee management about subsequent events that may
be material to the audit subject matter.
Laws and regulations impact the responsibilities of the organizations that are
being audited and the responsibilities of the auditor. Legal requirements that
are incorporated within a contract for audit services, laws and regulations
may impact the auditor’s responsibility for audit work, especially for reporting.
For certain types of audits, the auditor may be required to include very
specific information in the final audit report.
IS Audits
Laws and regulations vary across the globe. While the identification of
applicable law may extend over municipal, state, provincial and federal law,
the auditor should ensure that reporting guidelines that are promulgated by
oversight authorities are also included. Even if the auditor is versed in
performing legal research, legal services may be needed to ensure that
legally-mandated reporting requirements are identified and correctly
interpreted. For audits that involve government expenditures, subsidies and
grants, granting authorities can have reporting guidelines that need to be
addressed. The same body of law that was initially identified regarding the
responsibilities of the organization being audited can be an excellent starting
point to identify reporting requirements.
If, in the course of performing audit steps that are designed to detect fraud,
the evidence demonstrated a reasonable likelihood that illegal acts or fraud
had or were occurring, then there may be sufficient predication on the part of
management or law enforcement to initiate an investigation. At this juncture,
Although the above issue tends to be far more critical when audit reports are
made available to a wide readership, such as to external users and the
public, a separate report may be advisable even when distribution is within
The trends today reveal that report users have an increased need to be
provided with more information about business organizations, rather than less.
Continued emphasis has focused on enhancing disclosures in financial audits
of publicly traded organizations. The demands for further information have
been driven by business clients, customers, oversight authorities and
legislatures. The trend is for better, faster and more comprehensive reporting.
From proponents of governance to regulators, there has been a strong interest
in independent assessment and reporting of organisational compliance with
laws and regulations.